vendor\project-biz\portal-bundle\src\Controller\LoginController.php line 73

Open in your IDE?
  1. <?php
  3. namespace ProjectBiz\PortalBundle\Controller;
  5. use Doctrine\DBAL\Exception\UniqueConstraintViolationException;
  6. use Doctrine\ORM\EntityManager;
  7. use ProjectBiz\FormBundle\Form\Type\CustomPasswordType;
  8. use ProjectBiz\FormBundle\Form\Type\PasswordRecoveryType;
  9. use ProjectBiz\FormBundle\Form\Type\UserCredentialsType;
  10. use ProjectBiz\FormBundle\Form\Type\UserRegistrationType;
  11. use ProjectBiz\FormBundle\Form\Type\UserValidationType;
  12. use ProjectBiz\PortalBundle\Event\UserInteractionEvent;
  13. use ProjectBiz\PortalBundle\Exceptions\DuplicateUsernameException;
  14. use ProjectBiz\PortalBundle\Exceptions\UserNotCreatedException;
  15. use ProjectBiz\PortalBundle\Exceptions\ValidationTokenExpiredException;
  16. use ProjectBiz\PortalBundle\Exceptions\ValidationTokenInvalidException;
  17. use ProjectBiz\UserBundle\Entity\BaseUserInterface;
  18. use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
  19. use Symfony\Component\Form\Extension\Core\Type\SubmitType;
  20. use Symfony\Component\HttpFoundation\RedirectResponse;
  21. use Symfony\Component\HttpFoundation\Request;
  22. use Symfony\Component\Security\Core\Authentication\Token\UsernamePasswordToken;
  23. use Symfony\Component\Security\Core\Security;
  24. use Symfony\Component\Security\Http\Event\InteractiveLoginEvent;
  25. use Symfony\Component\Routing\Generator\UrlGeneratorInterface;
  27. class LoginController extends AbstractController
  28. {
  29.     const msgRegister 'Absenden';
  31.     const msgNoUniqueTokenFound 'Es konnte kein eindeutiger Token gefunden werden.';
  32.     const msgRegisterSuccess 'Die Registrierung war erfolgreich.';
  33.     const msgPasswordChanged 'Ihr Passwort wurde erfolgreich geändert.';
  34.     const msgValidationError 'Die Validierung ist fehlgeschlagen.';
  35.     const msgValidationTooOldError'Der Validierungs-Code ist abgelaufen.';
  36.     const msgAcceptPrivacyTerms 'Mit Anklicken des Links bestätigen Sie, die <a target="_blank" href="%s">Datenschutzerklärung</a> gelesen zu haben.';
  37.     const msgDomainNotAllowed "Die Domain Ihrer E-Mail-Adresse ist nicht in der Whitelist enthalten.\nBitte wenden Sie sich an Ihren Verantwortlichen.\nIhre E-Mail-Adresse wurde nicht gespeichert.";
  39.     /**
  40.      * Does the user accept cookies and privacy terms?
  41.      *
  42.      * If not the user always gets back to the privacy terms acceptance page.
  43.      *
  44.      */
  45.      #[Route('/compliance'name'compliance')]
  46.      public function compliance(Request $request)
  47.      {
  48.          if ($request->isMethod('POST') &&
  49.              $request->get('accept_privacy_terms') &&
  50.              $request->get('accept_cookies')) {
  52.                $session $request->getSession();
  54.                    // ❗ Session manuell starten, wenn nötig
  55.                    if (!$session->isStarted()) {
  56.                        $session->start();
  57.                    }
  59.                        // ✅ Zustimmung speichern
  60.               $session->set('compliance_accepted'true);
  61.              // ✔️ Session speichern, dass User akzeptiert hat
  63.              // 🔁 Weiterleitung zur Login-Seite
  66.              return $this->redirect($this->generateUrl('_login')); // oder: return $this->redirect('/login');
  67.          }
  69.          // 👁️ GET-Aufruf: zeige Formular
  70.          return $this->render('@ProjectBizPortal/Login/compliance.html.twig');
  71.      }
  73.     public function index(Request $request)
  74.     {
  76.         $session $request->getSession();
  78.         // get the login error if there is one
  79.         if ($request->attributes->has(Security::AUTHENTICATION_ERROR)) {
  80.             $error $request->attributes->get(
  81.                 Security::AUTHENTICATION_ERROR
  82.             );
  83.         } else {
  84.             $error $session->get(Security::AUTHENTICATION_ERROR);
  85.             $session->remove(Security::AUTHENTICATION_ERROR);
  86.         }
  88.         return $this->render('@ProjectBizPortal/Login/index.html.twig', [
  89.             // last username entered by the user
  90.             'features' => ['register' => $this->useRegistration()],
  91.             'last_username' => $session->get(Security::LAST_USERNAME),
  92.             'error' => $error,
  93.             'require_cookie_acceptance_at_login' => $this->getParameter('citibiz.require_cookie_acceptance_at_login'),
  94.         ]);
  95.     }
  97.     /**
  98.      * @param Request $request
  99.      *
  100.      * @return array|\Symfony\Component\HttpFoundation\Response
  101.      * @throws \Exception
  102.      */
  103.     public function recoverPassword(Request $request)
  104.     {
  105.         $form $this->createForm(PasswordRecoveryType::class);
  106.         $form->handleRequest($request);
  108.         if ($form->isSubmitted() && $form->isValid()) {
  109.             $data $form->getData();
  111.             /** @var \Doctrine\ORM\EntityManager $entityManager */
  112.             $entityManager $this->get('doctrine')->getManager();
  114.             /** @var \ProjectBiz\UserBundle\Entity\BaseUserInterface $user */
  115.             $user $entityManager
  116.                 ->getRepository($this->getUserClass())
  117.                 ->findOneBy(['username' => $data['username']]);
  119.             if ($user && $user->getEmail()) {
  120.                 $tokenType 'recover_password';
  121.                 $uniqueToken $this->getUniqueToken($entityManager$tokenType);
  122.                 $userClass $this->getParameter('projectbiz.user.user_entity_class');
  123.                 $tokenClass $userClass::TOKEN_CLASS;
  124.                 $token = new $tokenClass(
  125.                     $tokenType,
  126.                     $uniqueToken,
  127.                     $this->getParameter('citibiz.max_recover_password_age'),
  128.                     null,
  129.                     $user
  130.                 );
  132.                 $entityManager->persist($token);
  133.                 $entityManager->flush();
  135.                 // Send validation E-Mail
  136.                 $sender $this->getParameter('citibiz.email_sender');
  137.                 $subject $this->getParameter('citibiz.email_recover_password_subject');
  138.                 $message = (new \Swift_Message($subject))
  139.                     ->setFrom($sender)
  140.                     ->setTo($user->getEmail())
  141.                     ->setBody(
  142.                         $this->render(
  143.                             '@ProjectBizPortal/Email/recover_password.txt.twig',
  144.                             [
  145.                                 'token' => $token->getToken(),
  146.                                 'username' => $user->getUsername(),
  147.                                 'realname' => $user->getRealname(),
  148.                                 'href' => $this->getMailLinkGenerator()->generateUrl('_recover_password_token', [
  149.                                     'token' => $token->getToken()
  150.                                 ], true)
  151.                             ]
  152.                         )
  153.                     )
  154.                     ->addPart(
  155.                         $this->render(
  156.                             '@ProjectBizPortal/Email/recover_password.html.twig',
  157.                             [
  158.                                 'token' => $token->getToken(),
  159.                                 'username' => $user->getUsername(),
  160.                                 'realname' => $user->getRealname(),
  161.                                 'href' => $this->getMailLinkGenerator()->generateUrl('_recover_password_token', [
  162.                                     'token' => $token->getToken()
  163.                                 ])
  164.                             ]
  165.                         ), 'text/html'
  166.                     );
  167.                 $this->get('mailer')->send($message);
  168.             }
  170.             return $this->render("@ProjectBizPortal/Login/recoverPasswordSuccess.html.twig", [
  171.                 'user' => $data['username']
  172.             ]);
  173.         }
  175.         return $this->render('@ProjectBizPortal/Login/recoverPassword.html.twig',
  176.             [
  177.                 'form' => $form->createView()
  178.             ]
  179.         );
  180.     }
  182.     public function recoverPasswordToken(Request $request)
  183.     {
  184.         $userClass $this->getParameter('projectbiz.user.user_entity_class');
  185.         $tokenClass $userClass::TOKEN_CLASS;
  186.         $token $request->query->get('token');
  187.         /** @var \Doctrine\ORM\EntityManager $entityManager */
  188.         $entityManager $this->get('doctrine')->getManager();
  189.         $tokenEntity $entityManager->getRepository($tokenClass)->findOneBy(['token' => $token]);
  190.         if (!$tokenEntity) {
  191.             return $this->render('@ProjectBizPortal/Login/recoverPasswordToken.html.twig',
  192.                 [
  193.                     'missing_token' => true,
  194.                     'invalid_token' => false,
  195.                 ]
  196.             );
  197.         }
  198.         if (!$tokenEntity->isValid() || ($tokenEntity->getType() != 'recover_password')) {
  199.             return $this->render('@ProjectBizPortal/Login/recoverPasswordToken.html.twig',
  200.                 [
  201.                     'missing_token' => false,
  202.                     'invalid_token' => true,
  203.                 ]
  204.             );
  205.         }
  207.         $form $this->createForm(CustomPasswordType::class);
  208.         $form->add('create'SubmitType::class, [
  209.             'label' => self::msgRegister,
  210.         ]);
  211.         $form->handleRequest($request);
  213.         if ($form->isSubmitted() && $form->isValid()) {
  214.             $data $form->getData();
  215.             $user $tokenEntity->getUser();
  217.             if ($user) {
  218.                 $user->setPassword($data);
  219.                 $user->setModifiedBy($user);
  220.                 $user->setModifiedAt(new \DateTime());
  221.                 $entityManager->persist($user);
  222.                 $entityManager->remove($tokenEntity);
  223.                 $entityManager->flush();
  224.             }
  227.             $this->get('session')
  228.                 ->getFlashBag()
  229.                 ->add(
  230.                     'success',
  231.                     $this->get('translator')->trans(self::msgPasswordChanged)
  232.                 );
  233.             return $this->redirect($this->generateUrl('_login'));
  234.         }
  236.         return $this->render('@ProjectBizPortal/Login/recoverPasswordToken.html.twig',
  237.             [
  238.                 'missing_token' => false,
  239.                 'invalid_token' => false,
  240.                 'form' => $form->createView()
  241.             ]
  242.         );
  243.     }
  245.     public function register(Request $request)
  246.     {
  247.         if (!$this->useRegistration()) {
  248.             return $this->redirect($this->generateUrl('_login'));
  249.         }
  251.         $form $this->createForm(UserRegistrationType::class, ['email' => $request->query->get('email')], [
  252.             'additional_fields' => [
  253.                     'privacy_terms' => [
  254.                         'label' => sprintf($this->get('translator')->trans(self::msgAcceptPrivacyTerms), $this->generateUrl('pages_privacy_terms')),
  255.                         'required' => true,
  256.                         'type' => \Symfony\Component\Form\Extension\Core\Type\CheckboxType::class,
  257.                         'attr' => [
  258.                             'autocomplete' => 'off'
  259.                         ]
  260.                     ]
  261.                 ]
  262.         ]);
  264.         $form->handleRequest($request);
  266.         if ($form->isSubmitted() && $form->isValid()) {
  267.             // Create validation token (including supplied data)
  268.             $data $form->getData();
  270.             /*
  271.              * Check if the user's e-mail domain is allowed for registering.
  272.              */
  273.             if ($this->getParameter('citibiz.restrict_email_domains_on_registration')) {
  274.                 $allowedEmailDomainsStmt $this->get('citibiz.generic_repository_factory')->createGenericRepository('AllowedEmailDomains')->findAll(null, ['AllowedEmailDomains_Name']);
  276.                 $allowedEmailDomains = [];
  278.                 if ($allowedEmailDomainsStmt) {
  279.                     $allowedEmailDomains array_map(function($row) {
  280.                         return $row['AllowedEmailDomains_Name'];
  281.                     }, $allowedEmailDomainsStmt->fetchAll());
  282.                 }
  284.                 $userEmailParts explode('@'$data['email']);
  285.                 $userDomain array_pop($userEmailParts);
  287.                 if (!in_array($userDomain$allowedEmailDomains)) {
  288.                     $this->setAndTransFlashMessage(self::msgDomainNotAllowed);
  290.                     return [
  291.                         'form' => $form->createView()
  292.                     ];
  293.                 }
  294.             }
  296.             /** @var \Doctrine\ORM\EntityManager $entityManager */
  297.             $entityManager $this->get('doctrine')->getManager();
  298.             $tokenType 'validation';
  299.             $uniqueToken $this->getUniqueToken($entityManager$tokenType);
  300.             $userClass $this->getParameter('projectbiz.user.user_entity_class');
  301.             $tokenClass $userClass::TOKEN_CLASS;
  302.             $token = new $tokenClass(
  303.                 $tokenType,
  304.                 $uniqueToken,
  305.                 $this->getParameter('citibiz.max_validation_age'),
  306.                 $data
  307.             );
  309.             $entityManager->persist($token);
  310.             $entityManager->flush();
  312.             // Send validation E-Mail
  313.             $sender $this->getParameter('citibiz.email_sender');
  314.             $subject $this->getParameter('citibiz.email_registration_subject');
  315.             $privacyUrl $this->generateUrl(
  316.                 'pages_privacy_terms',
  317.                 ['slug' => 'datenschutz'],
  318.                 UrlGeneratorInterface::ABSOLUTE_URL
  319.             );
  320.             $imprintUrl $this->generateUrl(
  321.                 'pages_imprint',
  322.                 ['slug' => 'impressum'],
  323.                 UrlGeneratorInterface::ABSOLUTE_URL
  324.             );
  325.             $message = (new \Swift_Message($subject))
  326.                 ->setFrom($sender)
  327.                 ->setTo($data['email'])
  328.                 ->setBody(
  329.                     $this->render(
  330.                         '@ProjectBizPortal/Email/validation.txt.twig',
  331.                         [
  332.                             'portal_name' => $this->getParameter('citibiz.portal'),
  333.                             'token' => $token->getToken(),
  334.                             'email' => $data["email"],
  335.                             'href' => $this->getMailLinkGenerator()->generateUrl('_register_do_validate', [
  336.                                 'user_validation' => [
  337.                                     'email' => $data['email'],
  338.                                     'code' => $token->getToken()
  339.                                 ]
  340.                             ], true)
  341.  ]
  342.                     )
  343.                 )
  344.                 ->addPart(
  345.                     $this->render(
  346.                         '@ProjectBizPortal/Email/validation.html.twig',
  347.                         [
  348.                             'portal_name' => $this->getParameter('citibiz.portal'),
  349.                             'token' => $token->getToken(),
  350.                             'email' => $data["email"],
  351.                             'imprintUrl' => $imprintUrl,
  352.                             'privacyUrl' => $privacyUrl,
  353.                             'href' => $this->getMailLinkGenerator()->generateUrl('_register_do_validate', [
  354.                                 'user_validation' => [
  355.                                     'email' => $data['email'],
  356.                                     'code' => $token->getToken()
  357.                                 ]
  358.                             ], true)
  359.                         ]
  360.                     ),
  361.                     'text/html'
  362.                 );
  363.             $this->get('mailer')->send($message);
  365.             $this->get('projectbiz.portal.user_interaction.event_dispatcher')->dispatch(
  366.                 UserInteractionEvent::EVENT,
  367.                 new UserInteractionEvent(UserInteractionEvent::EVENT_REGISTRATION_BEGIN, [
  368.                         'registration' => $data
  369.                 ])
  370.             );
  372.             return $this->redirect($this->generateUrl('_register_validate', ['email' => $data['email']]));
  373.         }
  375.         return $this->render('@ProjectBizPortal/Login/register.html.twig',
  376.             [
  377.                 'form' => $form->createView()
  378.             ]
  379.         );
  380.     }
  382.     /**
  383.      * @param Request $request
  384.      *
  385.      * @return array|RedirectResponse
  386.      */
  387.     public function registerValidation(Request $request)
  388.     {
  389.         if (!$this->useRegistration()) {
  390.             return $this->redirect($this->generateUrl('_login'));
  391.         }
  393.         $data = [
  394.             'email' => $request->query->get('email')
  395.         ];
  397.         $form $this->createForm(UserValidationType::class, $data, [
  398.             'action' => $this->generateUrl('_register_do_validate'),
  399.             'method' => 'GET',
  400.             'csrf_protection' => false
  401.         ]);
  403.         return $this->render('@ProjectBizPortal/Login/registerValidation.html.twig', [
  404.             'form' => $form->createView()
  405.         ]);
  406.     }
  408.     /**
  409.      * @param Request $request
  410.      *
  411.      * @return array|\Symfony\Component\HttpFoundation\RedirectResponse
  412.      */
  413.     public function registerValidate(Request $request)
  414.     {
  415.         $userClass $this->getParameter('projectbiz.user.user_entity_class');
  416.         $tokenClass $userClass::TOKEN_CLASS;
  418.         $form $this->createForm(UserValidationType::class, [], [
  419.             'method' => 'GET',
  420.             'csrf_protection' => false
  421.         ]);
  422.         $form->handleRequest($request);
  423.         if ($form->isSubmitted() && !$form->isValid()) {
  424.             $this
  425.                 ->get('session')
  426.                 ->getFlashBag()
  427.                 ->add(
  428.                     'danger',
  429.                     $this->get('translator')->trans(self::msgValidationError)
  430.                 );
  431.             return $this->redirect($this->generateUrl('_register_validate'));
  432.         }
  434.         $data $form->getData();
  435.         /** @var \Doctrine\ORM\EntityManager $em */
  436.         $em $this->get('doctrine')->getManager();
  437.         $token $em->getRepository($tokenClass)->findBy(['token' => $data['code']]);
  438.         // Check a/ if $token b/ $token has correct email c/ $token is not too old
  439.         if (!((count($token) == 1) && ($token[0]->getData()['email'] == $data['email']) && $token[0]->isValid())) {
  440.             // Error - show error message
  441.             if ((count($token) == 1) && !$token[0]->isValid()) {
  442.                 $this
  443.                     ->get('session')
  444.                     ->getFlashBag()
  445.                     ->add(
  446.                         'danger',
  447.                         $this->get('translator')->trans(self::msgValidationTooOldError)
  448.                     );
  449.                 return $this->redirect($this->generateUrl('_register', ['email' => $data['email']]));
  450.             }
  452.             $this
  453.                 ->get('session')
  454.                 ->getFlashBag()
  455.                 ->add(
  456.                     'danger',
  457.                     $this->get('translator')->trans(self::msgValidationError)
  458.                 );
  459.             return $this->redirect($this->generateUrl('_register_validate', ['email' => $data['email']]));
  460.         }
  462.         // Valid - ask for username and password - token and email are stored hidden
  463.         $form $this->createForm(UserCredentialsType::class, $data, [
  464.             'action' => $this->generateUrl('_register_credentials'),
  465.             'use_realname' => $this->getParameter('citibiz.registration_use_realname')
  466.         ]);
  468.         return $this->render('@ProjectBizPortal/Login/registerCredentials.html.twig', [
  469.             'form' => $form->createView()
  470.         ]);
  471.     }
  473.     /**
  474.      * @param Request $request
  475.      *
  476.      * @return array|\Symfony\Component\HttpFoundation\RedirectResponse
  477.      * @throws \Doctrine\DBAL\ConnectionException
  478.      * @throws \Exception
  479.      */
  480.     public function registerCredentials(Request $request)
  481.     {
  482.         $form $this->createForm(UserCredentialsType::class, ['use_realname' => true]);
  483.         $form->handleRequest($request);
  484.         if ($form->isSubmitted() && $form->isValid()) {
  485.             $data $form->getData();
  486.             $success true;
  488.             try {
  489.                 $this->handleCredentialsFormData($data$request);
  490.                 $this->get('projectbiz.portal.user_interaction.event_dispatcher')->dispatch(
  491.                     UserInteractionEvent::EVENT,
  492.                     new UserInteractionEvent(UserInteractionEvent::EVENT_REGISTRATION_END, [
  493.                         'registration' => $data
  494.                     ])
  495.                 );
  496.             } catch (ValidationTokenExpiredException $ex) {
  497.                 $this->setAndTransFlashMessage($ex->getMessage());
  498.                 return $this->redirect($this->generateUrl('_register', ['email' => $data['email']]));
  499.             }
  500.             catch(ValidationTokenInvalidException $ex) {
  501.                 $this->setAndTransFlashMessage($ex->getMessage());
  502.                 return $this->redirect($this->generateUrl('_register_validate', ['email' => $data['email']]));
  503.             }
  504.             catch(UserNotCreatedException $ex) {
  505.                 $this->setAndTransFlashMessage($ex->getMessage());
  506.                 $success false;
  507.             }
  508.             catch(DuplicateUsernameException $ex) {
  509.                 $this->setAndTransFlashMessage($ex->getMessage());
  510.                 $success false;
  511.             }
  512.             catch (UniqueConstraintViolationException $ex) {
  513.                 $this->setAndTransFlashMessage(DuplicateUsernameException::MSG_DUPLICATE_USERNAME);
  514.                 $success false;
  515.             }
  517.             if ($success) {
  518.                 $this->setAndTransFlashMessage(self::msgRegisterSuccess'success');
  519.                 return $this->redirect($this->generateUrl('portal'));
  520.             }
  522.         }
  524.         return $this->render('@ProjectBizPortal/Login/registerCredentials.html.twig',
  525.             [
  526.                 'form' => $form->createView()
  527.             ]
  528.         );
  529.     }
  531.     protected function getUserClass()
  532.     {
  533.         return $this->getParameter('projectbiz.user.user_entity_class');
  534.     }
  536.     /**
  537.      * @param EntityManager $em
  538.      * @param               $tokenType
  539.      *
  540.      * @return mixed
  541.      *
  542.      * @throws \Exception
  543.      */
  544.     private function getUniqueToken(EntityManager $em$tokenType)
  545.     {
  546.         $userClass $this->getParameter('projectbiz.user.user_entity_class');
  547.         $tokenClass $userClass::TOKEN_CLASS;
  548.         $maxTrys 1000;
  549.         while ($maxTrys 0) {
  550.             $tokenString $this->get('citibiz.token_factory')->createToken($tokenType);
  551.             $identicalTokens $em
  552.                 ->getRepository($tokenClass)
  553.                 ->findBy(['token' => $tokenString]);
  554.             if (count($identicalTokens) == 0) {
  555.                 return $tokenString;
  556.             }
  557.             $maxTrys--;
  558.         }
  559.         throw new \Exception(self::msgNoUniqueTokenFound);
  560.     }
  562.     private function setAndTransFlashMessage($message$type 'danger') {
  563.         $this
  564.             ->get('session')
  565.             ->getFlashBag()
  566.             ->add(
  567.                 $type,
  568.                 $this->get('translator')->trans($message)
  569.             );
  570.     }
  572.     /**
  573.      * @return \Doctrine\ORM\EntityManager
  574.      */
  575.     private function getEntityManager()
  576.     {
  577.         return $this->get('doctrine')->getManager();
  578.     }
  580.     private function handleCredentialsFormData($dataRequest $request)
  581.     {
  582.         $userClass $this->getParameter('projectbiz.user.user_entity_class');
  583.         $tokenClass $userClass::TOKEN_CLASS;
  585.         $entityManager $this->getEntityManager();
  587.         // Check token (again)
  588.         /** @var \ProjectBiz\UserBundle\Entity\Token[] $token */
  589.         $token $entityManager
  590.             ->getRepository($tokenClass)
  591.             ->findBy(['token' => $data['code']]);
  593.         if (!((count($token) == 1) && ($token[0]->getData()['email'] == $data['email']) && $token[0]->isValid())) {
  594.             // Error - show error message
  595.             if ((count($token) == 1) && !$token[0]->isValid()) {
  596.                 throw new ValidationTokenExpiredException();
  597.             }
  599.             throw new ValidationTokenInvalidException();
  600.         }
  602.         $this->createAndLoginUser($data$token$request);
  603.     }
  605.     private function createAndLoginUser($data$tokenRequest $request)
  606.     {
  607.         $entityManager $this->getEntityManager();
  609.         // Create user
  610.         $realname null;
  611.         if ($this->getParameter('citibiz.registration_use_realname')) {
  612.             $realname $data['realname'];
  613.         }
  614.         $className $this->getUserClass();
  616.         /** @var BaseUserInterface $user */
  617.         $user = new $className(
  618.             $data['username'],
  619.             $data['password'],
  620.             $realname,
  621.             $data['email'],
  622.             $this->getParameter('citibiz.active_after_registration'),
  623.             $this->getParameter('citibiz.rights_after_registration')
  624.         );
  626.         $userProvider $this->get('projectbiz.user.user_provider');
  627.         $admin        $userProvider->loadUserByUsername('admin');
  629.         // Transactional to ensure unique usernames
  630.         $entityManager->getConnection()->beginTransaction();
  632.         try {
  633.             $user->setModifiedBy($admin);
  634.             $entityManager->persist($user);
  635.             if ($user->getRights()) {
  636.                 $user->getRights()->setModifiedBy($user);
  637.                 $entityManager->persist($user->getRights());
  638.             }
  639.             $entityManager->remove($token[0]);
  640.             $user->setCreatedBy($user);
  641.             $entityManager->persist($user);
  643.             $entityManager->flush();
  645.             $users $entityManager
  646.                 ->getRepository($this->getUserClass())
  647.                 ->findBy(['username' => $data['username']]);
  648.             if (count($users) == 0) {
  649.                 throw new UserNotCreatedException();
  650.             }
  652.             if (count($users) > 1) {
  653.                 throw new DuplicateUsernameException();
  654.             }
  655.         } catch (\Exception $ex) {
  656.             $entityManager->getConnection()->rollBack();
  657.             throw($ex);
  658.         }
  660.         $entityManager->getConnection()->commit();
  662.         // Login User
  664.         if ($this->getParameter('citibiz.login_after_registration')) {
  665.             // Here, "main" is the name of the firewall in your security.yml
  666.             $secToken = new UsernamePasswordToken($user$user->getPassword(), "main"$user->getRoles());
  667.             $this->get("security.token_storage")->setToken($secToken);
  669.             // Fire the login event
  670.             // Logging the user in above the way we do it doesn't do this automatically
  671.             $event = new InteractiveLoginEvent($request$secToken);
  672.             $this->get("event_dispatcher")->dispatch("security.interactive_login"$event);
  674.             $session $request->getSession();
  675.             $session->set('_security_main'serialize($secToken));
  676.         }
  677.     }
  679.     private function useRegistration()
  680.     {
  681.         if ($useRegistration $this->getParameter('citibiz.use_registration')) {
  682.             return $useRegistration;
  683.         }
  684.         return false;
  685.     }
  687.     /**
  688.      * @return \ProjectBiz\PortalBundle\Service\MailLinkGenerator
  689.      */
  690.     private function getMailLinkGenerator()
  691.     {
  692.         return $this->get('projectbiz.portal.mail_link_generator');
  693.     }
  694. }